Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Iml-JxkVf3aO2ItVOTnMvuzwWow.roa
File: Iml-JxkVf3aO2ItVOTnMvuzwWow.roa (raw, json)
Hash identifier: w+T/mmfK63y+BpAd287TyYxUihIN0+ZVmLCKyEkP7b0=
Subject key identifier: 22:69:7E:27:19:15:7F:76:8E:D8:8B:55:39:39:CC:BE:EC:F0:5A:8C
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 10B2C478
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Iml-JxkVf3aO2ItVOTnMvuzwWow.roa
Signing time: Sat 01 Jan 2022 09:05:19 +0000
ROA not before: Sat 01 Jan 2022 09:05:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210732
IP address blocks: 2a0e:b107:9b0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 280151160 (0x10b2c478)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 1 09:05:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=22697e2719157f768ed88b553939ccbeecf05a8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:11:77:8b:67:6f:c2:55:8f:11:3f:94:7f:36:
8e:e0:bb:6a:98:40:fd:04:e8:a0:b8:ca:d9:48:7f:
72:74:78:13:8a:0b:1e:3a:ca:c1:04:cf:83:2f:e1:
12:c3:f2:5b:34:ad:15:cb:46:ff:fa:6a:b2:87:d4:
4e:bc:96:25:45:db:0f:ba:ad:f6:5d:8f:5a:81:38:
e7:37:57:3c:0a:6b:e3:b3:a5:40:e3:b2:63:0d:e0:
09:e1:b3:b3:be:d7:44:66:f4:ce:56:2f:f7:ae:2e:
68:1f:9c:54:5e:a8:5d:e4:46:a5:a9:25:a1:f2:ac:
7d:d2:4c:41:f9:34:44:dd:8c:fb:b0:e5:75:a2:bf:
0b:61:25:80:2c:b7:15:d8:b3:36:60:d1:41:d0:e1:
5d:07:22:d7:12:e9:c6:af:c7:2f:19:dc:15:ba:07:
4e:9d:9e:97:fc:83:77:f4:52:cc:f1:88:63:be:b1:
5e:5b:9f:98:64:a6:4a:4e:0c:2c:3f:6d:3d:2b:57:
ff:a9:53:86:7b:96:4f:1e:c6:b2:f3:3c:27:30:77:
75:04:fe:17:2c:78:8f:79:a8:d5:38:5e:ba:b9:1c:
6f:a8:39:3a:23:75:cb:da:4b:ae:33:8c:d2:46:8f:
88:bb:dc:51:da:af:4d:a4:3d:d0:2e:e7:a9:eb:92:
6e:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:69:7E:27:19:15:7F:76:8E:D8:8B:55:39:39:CC:BE:EC:F0:5A:8C
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Iml-JxkVf3aO2ItVOTnMvuzwWow.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:9b0::/44
Signature Algorithm: sha256WithRSAEncryption
ca:42:ac:01:fb:99:c1:42:75:5c:0b:f8:cd:cf:d6:a2:32:e9:
09:87:f2:2a:5b:87:79:75:e6:67:00:71:e4:74:7f:bd:1c:0d:
55:4b:69:ca:00:57:02:69:f6:58:d4:73:cf:98:29:87:f4:d7:
78:d0:c8:6d:1c:cb:47:eb:a4:fd:56:96:63:07:1d:62:4e:45:
5f:1e:ee:fd:a0:98:17:e3:14:b1:3c:6c:22:f9:3b:74:80:6a:
85:79:be:21:79:31:12:b3:6c:24:71:a5:a3:88:a6:2e:d9:6e:
8f:22:76:8f:ff:84:14:f5:4c:cd:a9:81:0f:94:9b:a7:2c:7e:
ba:3d:1b:c0:46:3e:9e:0e:26:4a:11:00:f0:ae:e0:92:b6:71:
6e:d9:e4:22:07:98:ee:71:ce:fd:ed:09:ba:55:f1:c8:33:9a:
ac:75:cb:2b:60:70:b3:f2:2a:a8:85:8c:a6:3b:5e:b7:e0:dd:
f5:5b:8d:e5:8a:96:9b:08:06:9d:04:63:c5:d7:66:2e:d4:30:
20:9e:86:30:90:71:13:e6:05:13:98:39:7f:08:f7:f3:84:f8:
1f:b8:cc:54:f8:29:68:da:62:8d:7f:92:2b:b9:af:51:a7:ad:
6c:81:54:67:c1:a4:2e:8c:e2:df:fe:0e:60:d2:e6:ca:a4:6f:
3f:c1:08:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:57 2023 by rpki-client on console-ams.rpki-client.org